Hello

I'm developing two web service pages for my site. one of them is for feeding stock market data to my web site and data is comming from a special IP. is this possible to block any other incomming IP addresses?

for the other web service page, every body can feed some input; Is there any way to secure against abusing by sending too frequent fake requests? what shall I do?

thanks

You can easily add logic to your web service page to check the requester IP and return an error (by either throwing an error or returning a invalid data set).


Bruce

DiscountASP.NET
www.DiscountASP.NET (http://www.DiscountASP.NET)

Yes, you can check HttpContext.Current.Request.UserHostAddress . It is possible at DASP now.
But if DASP will use firewall that it isn ?t be possible because all requests will have the same firewall server address.
Alexei.
http://www.californiadreamhomesandland.com (http://www.californiadreamhomesandland.com/)

Thanks
According to these two rplies I conclude there is no firewall on the way, so I can check the IP address. But, excuse me, I'm not expert, isn't there a need for firewall?

Unfortunately at this time WSE is not support on the Windows 2008 servers......

rcp
DiscountASP.NET
www.DiscountASP.NET (http://www.DiscountASP.NET)

I think that, the best solution for your problem is
Web Services Enhancements (WSE) 3.0 for Microsoft .NET
http://www.microsoft.com/downloads/details.aspx?familyid=018a09fd-3a74-43c5-8ec1-8d789091255d&displaylang=en

Alexei.

http://www.californiadreamhomesandland.com

You can do something like this


if HttpContext.Current.Request.ServerVariables["REMOTE_ADDR"].ToString <> "1.2.3.4" Then


Throw new exception("Your IP address is not on the white list")


End If


Bruce

DiscountASP.NET
www.DiscountASP.NET (http://www.DiscountASP.NET)